diff options
Diffstat (limited to 'man/ru/man8/useradd.8')
-rw-r--r-- | man/ru/man8/useradd.8 | 326 |
1 files changed, 59 insertions, 267 deletions
diff --git a/man/ru/man8/useradd.8 b/man/ru/man8/useradd.8 index 4e5a7f14..7625c483 100644 --- a/man/ru/man8/useradd.8 +++ b/man/ru/man8/useradd.8 @@ -1,13 +1,13 @@ '\" t .\" Title: useradd .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 01/02/2022 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 08/18/2022 .\" Manual: Команды управления системой -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Russian .\" -.TH "useradd" "8" "01/02/2022" "shadow\-utils 4\&.11\&.1" "Команды управления системой" +.TH "useradd" "8" "08/18/2022" "shadow\-utils 4\&.12\&.2" "Команды управления системой" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -68,11 +68,7 @@ The default base directory for the system if \fB\-d\fR\ \&\fIHOME_DIR\fR is not specified\&. \fIBASE_DIR\fR -is concatenated with the account name to define the home directory\&. If the -\fB\-m\fR -option is not used, -\fIBASE_DIR\fR -must exist\&. +is concatenated with the account name to define the home directory\&. .sp If this option is not specified, \fBuseradd\fR @@ -86,7 +82,7 @@ by default\&. .PP \fB\-c\fR, \fB\-\-comment\fR\ \&\fICOMMENT\fR .RS 4 -Любая текстовая строка\&. Обычно, здесь коротко описывается учётная запись, и в настоящее время используется как поле для имени и фамилии пользователя\&. +Any text string\&. It is generally a short description of the account, and is currently used as the field for the user\*(Aqs full name\&. .RE .PP \fB\-d\fR, \fB\-\-home\-dir\fR\ \&\fIHOME_DIR\fR @@ -124,7 +120,8 @@ variable in .PP \fB\-f\fR, \fB\-\-inactive\fR\ \&\fIINACTIVE\fR .RS 4 -Если указано значение 0, то учётная запись блокируется сразу после устаревания пароля, а при значении \-1 данная возможность не используется\&. +defines the number of days after the password exceeded its maximum age where the user is expected to replace this password\&. The value is stored in the shadow password file\&. An input of 0 will disable an expired password with no delay\&. An input of \-1 will blank the respective field in the shadow password file\&. See +\fBshadow\fR(5)for more information\&. .sp If not specified, \fBuseradd\fR @@ -134,9 +131,20 @@ variable in /etc/default/useradd, or \-1 by default\&. .RE .PP +\fB\-F\fR, \fB\-\-add\-subids\-for\-system\fR +.RS 4 +Update +/etc/subuid +and +/etc/subgid +even when creating a system account with +\fB\-r\fR +option\&. +.RE +.PP \fB\-g\fR, \fB\-\-gid\fR\ \&\fIGROUP\fR .RS 4 -Имя или числовой идентификатор первичной группы пользователя\&. Группа с таким именем должна существовать\&. Идентификатор группы должен указывать на уже существующую группу\&. +The name or the number of the user\*(Aqs primary group\&. The group name must exist\&. A group number must refer to an already existing group\&. .sp If not specified, the behavior of \fBuseradd\fR @@ -198,14 +206,15 @@ defaults (\fBUID_MIN\fR, \fBUMASK\fR, \fBPASS_MAX_DAYS\fR and others)\&. - +.sp Example: -\fB\-K\fR\ \&\fIPASS_MAX_DAYS\fR=\fI\-1\fR -can be used when creating system account to turn off password aging, even though system account has no password at all\&. Multiple +\fB\-K\fR\ \&\fIPASS_MAX_DAYS \fR=\fI\-1\fR +can be used when creating an account to turn off password aging\&. Multiple \fB\-K\fR options can be specified, e\&.g\&.: -\fB\-K\fR\ \&\fIUID_MIN\fR=\fI100\fR\ \& -\fB\-K\fR\ \&\fIUID_MAX\fR=\fI499\fR +\fB\-K\fR\ \&\fIUID_MIN\fR +=\fI100\fR\ \&\fB\-K\fR\ \& +\fIUID_MAX\fR=\fI499\fR .RE .PP \fB\-l\fR, \fB\-\-no\-log\-init\fR @@ -238,7 +247,7 @@ The directory where the user\*(Aqs home directory is created must exist and have .PP \fB\-M\fR, \fB\-\-no\-create\-home\fR .RS 4 -Do no create the user\*(Aqs home directory, even if the system wide setting from +Do not create the user\*(Aqs home directory, even if the system wide setting from /etc/login\&.defs (\fBCREATE_HOME\fR) is set to \fIyes\fR\&. @@ -265,20 +274,22 @@ variable in .PP \fB\-o\fR, \fB\-\-non\-unique\fR .RS 4 -Разрешить создание учётной записи с уже имеющимся (не уникальным) UID\&. +allows the creation of an account with an already existing UID\&. .sp This option is only valid in combination with the \fB\-u\fR -option\&. +option\&. As a user identity serves as key to map between users on one hand and permissions, file ownerships and other aspects that determine the system\*(Aqs behavior on the other hand, more than one login name will access the account of the given UID\&. .RE .PP \fB\-p\fR, \fB\-\-password\fR\ \&\fIPASSWORD\fR .RS 4 -The encrypted password, as returned by -\fBcrypt\fR(3)\&. The default is to disable the password\&. +defines an initial password for the account\&. PASSWORD is expected to be encrypted, as returned by +\fBcrypt \fR(3)\&. Within a shell script, this option allows to create efficiently batches of users\&. +.sp +Without this option, the new account will be locked and with no password defined, i\&.e\&. a single exclamation mark in the respective field of +/etc/shadow\&. This is a state where the user won\*(Aqt be able to access the account or to define a password himself\&. .sp -\fBNote:\fR -This option is not recommended because the password (or encrypted password) will be visible by users listing the processes\&. +\fBNote:\fRAvoid this option on the command line because the password (or encrypted password) will be visible by users listing the processes\&. .sp Вы должны проверить, что пароль соответствует политике системных паролей\&. .RE @@ -304,6 +315,13 @@ will not create a home directory for such a user, regardless of the default sett (\fBCREATE_HOME\fR)\&. You have to specify the \fB\-m\fR options if you want a home directory for a system account to be created\&. +.sp +Note that this option will not update +/etc/subuid +and +/etc/subgid\&. You have to specify the +\fB\-F\fR +options if you want to update the files for a system account to be created\&. .RE .PP \fB\-R\fR, \fB\-\-root\fR\ \&\fICHROOT_DIR\fR @@ -312,24 +330,22 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-P\fR, \fB\-\-prefix\fR\ \&\fIPREFIX_DIR\fR .RS 4 -Apply changes in the -\fIPREFIX_DIR\fR -directory and use the configuration files from the -\fIPREFIX_DIR\fR -directory\&. This option does not chroot and is intended for preparing a cross\-compilation target\&. Some limitations: NIS and LDAP users/groups are not verified\&. PAM authentication is using the host files\&. No SELINUX support\&. +Apply changes to configuration files under the root filesystem found under the directory +\fIPREFIX_DIR\fR\&. This option does not chroot and is intended for preparing a cross\-compilation target\&. Some limitations: NIS and LDAP users/groups are not verified\&. PAM authentication is using the host files\&. No SELINUX support\&. .RE .PP \fB\-s\fR, \fB\-\-shell\fR\ \&\fISHELL\fR .RS 4 -The name of the user\*(Aqs login shell\&. The default is to leave this field blank, which causes the system to select the default login shell specified by the +sets the path to the user\*(Aqs login shell\&. Without this option, the system will use the \fBSHELL\fR -variable in -/etc/default/useradd, or an empty string by default\&. +variable specified in +/etc/default/useradd, or, if that is as well not set, the field for the login shell in +/etc/passwdremains empty\&. .RE .PP \fB\-u\fR, \fB\-\-uid\fR\ \&\fIUID\fR @@ -363,7 +379,9 @@ variable in .PP \fB\-Z\fR, \fB\-\-selinux\-user\fR\ \&\fISEUSER\fR .RS 4 -Пользователь SELinux для регистрационной оболочки пользователя\&. По умолчанию это поле пусто, что заставляет систему выбрать пользователя SELinux по умолчанию\&. +defines the SELinux user for the new account\&. Without this option, a SELinux uses the default user\&. Note that the shadow system doesn\*(Aqt store the selinux\-user, it uses +\fBsemanage\fR(8) +for that\&. .RE .SS "Изменение значений по умолчанию" .PP @@ -379,7 +397,7 @@ will update the default values for the specified options\&. Valid default\-chang .PP \fB\-b\fR, \fB\-\-base\-dir\fR\ \&\fIBASE_DIR\fR .RS 4 -The path prefix for a new user\*(Aqs home directory\&. The user\*(Aqs name will be affixed to the end of +sets the path prefix for a new user\*(Aqs home directory\&. The user\*(Aqs name will be affixed to the end of \fIBASE_DIR\fR to form the new user\*(Aqs home directory name, if the \fB\-d\fR @@ -393,7 +411,7 @@ variable in .PP \fB\-e\fR, \fB\-\-expiredate\fR\ \&\fIEXPIRE_DATE\fR .RS 4 -Дата, когда учётная запись пользователя заблокирована\&. +sets the date on which newly created user accounts are disabled\&. .sp This option sets the \fBEXPIRE\fR @@ -403,7 +421,8 @@ variable in .PP \fB\-f\fR, \fB\-\-inactive\fR\ \&\fIINACTIVE\fR .RS 4 -Число дней, которые должны пройти после устаревания пароля, перед тем как учётная запись будет заблокирована\&. +defines the number of days after the password exceeded its maximum age where the user is expected to replace this password\&. See +\fBshadow\fR(5)for more information\&. .sp This option sets the \fBINACTIVE\fR @@ -413,14 +432,7 @@ variable in .PP \fB\-g\fR, \fB\-\-gid\fR\ \&\fIGROUP\fR .RS 4 -The group name or ID for a new user\*(Aqs initial group (when the -\fB\-N/\-\-no\-user\-group\fR -is used or when the -\fBUSERGROUPS_ENAB\fR -variable is set to -\fIno\fR -in -/etc/login\&.defs)\&. The named group must exist, and a numerical group ID must have an existing entry\&. +sets the default primary group for newly created users, accepting group names or a numerical group ID\&. The named group must exist, and the GID must have an existing entry\&. .sp This option sets the \fBGROUP\fR @@ -430,7 +442,7 @@ variable in .PP \fB\-s\fR, \fB\-\-shell\fR\ \&\fISHELL\fR .RS 4 -Имя новой регистрационной командной оболочки пользователя\&. +defines the default login shell for new users\&. .sp This option sets the \fBSHELL\fR @@ -460,226 +472,6 @@ will deny the user account creation request\&. The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBCREATE_HOME\fR (boolean) -.RS 4 -Определяет, должен ли создаваться по умолчанию домашний каталог для новых пользователей\&. -.sp -Эта переменная не влияет на системных пользователей и может быть переопределена из командной строки\&. -.RE -.PP -\fBGID_MAX\fR (number), \fBGID_MIN\fR (number) -.RS 4 -Range of group IDs used for the creation of regular groups by -\fBuseradd\fR, -\fBgroupadd\fR, or -\fBnewusers\fR\&. -.sp -The default value for -\fBGID_MIN\fR -(resp\&. -\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&. -.RE -.PP -\fBHOME_MODE\fR (number) -.RS 4 -The mode for new home directories\&. If not specified, the -\fBUMASK\fR -is used to create the mode\&. -.sp -\fBuseradd\fR -and -\fBnewusers\fR -use this to set the mode of the home directory they create\&. -.RE -.PP -\fBLASTLOG_UID_MAX\fR (number) -.RS 4 -Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&. -.sp -No -\fBLASTLOG_UID_MAX\fR -option present in the configuration means that there is no user ID limit for writing lastlog entries\&. -.RE -.PP -\fBMAIL_DIR\fR (string) -.RS 4 -The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in -/etc/default/useradd -determines whether the mail spool should be created\&. -.RE -.PP -\fBMAIL_FILE\fR (string) -.RS 4 -Определяет расположение почтовых файлов пользователя относительно домашнего каталога\&. -.RE -.PP -The -\fBMAIL_DIR\fR -and -\fBMAIL_FILE\fR -variables are used by -\fBuseradd\fR, -\fBusermod\fR, and -\fBuserdel\fR -to create, move, or delete the user\*(Aqs mail spool\&. -.PP -If -\fBMAIL_CHECK_ENAB\fR -is set to -\fIyes\fR, they are also used to define the -\fBMAIL\fR -environment variable\&. -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -Значение по умолчанию равно 0, означающее, что ограничения на количество членов в группе нет\&. -.sp -Данная возможность (разделение группы) позволяет ограничить длину строк в файле групп\&. Это полезно для ограничения длины строк групп NIS в 1024 символа\&. -.sp -Если вам нужно такое ограничение, укажите значение 25\&. -.sp -Замечание: разделение групп поддерживается не всеми инструментами (даже в наборе инструментов Shadow)\&. Вы не должны использовать эту переменную, если вам действительно это ненужно\&. -.RE -.PP -\fBPASS_MAX_DAYS\fR (number) -.RS 4 -Максимальное число дней использования пароля\&. Если пароль старее этого числа, то будет запущена процедура смены пароля\&. Если значение не задано, то предполагается значение \-1 (то есть возможность ограничения не используется)\&. -.RE -.PP -\fBPASS_MIN_DAYS\fR (number) -.RS 4 -The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&. -.RE -.PP -\fBPASS_WARN_AGE\fR (number) -.RS 4 -Число дней за которое начнёт выдаваться предупреждение об устаревании пароля\&. Нулевое значение означает, что предупреждение выдаётся в день устаревания, при отрицательном значении предупреждение выдаваться не будет\&. Если значение не задано, выдача предупреждения отключается\&. -.RE -.PP -\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number) -.RS 4 -If -/etc/subuid -exists, the commands -\fBuseradd\fR -and -\fBnewusers\fR -(unless the user already have subordinate group IDs) allocate -\fBSUB_GID_COUNT\fR -unused group IDs from the range -\fBSUB_GID_MIN\fR -to -\fBSUB_GID_MAX\fR -for each new user\&. -.sp -The default values for -\fBSUB_GID_MIN\fR, -\fBSUB_GID_MAX\fR, -\fBSUB_GID_COUNT\fR -are respectively 100000, 600100000 and 65536\&. -.RE -.PP -\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number) -.RS 4 -If -/etc/subuid -exists, the commands -\fBuseradd\fR -and -\fBnewusers\fR -(unless the user already have subordinate user IDs) allocate -\fBSUB_UID_COUNT\fR -unused user IDs from the range -\fBSUB_UID_MIN\fR -to -\fBSUB_UID_MAX\fR -for each new user\&. -.sp -The default values for -\fBSUB_UID_MIN\fR, -\fBSUB_UID_MAX\fR, -\fBSUB_UID_COUNT\fR -are respectively 100000, 600100000 and 65536\&. -.RE -.PP -\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number) -.RS 4 -Range of group IDs used for the creation of system groups by -\fBuseradd\fR, -\fBgroupadd\fR, or -\fBnewusers\fR\&. -.sp -The default value for -\fBSYS_GID_MIN\fR -(resp\&. -\fBSYS_GID_MAX\fR) is 101 (resp\&. -\fBGID_MIN\fR\-1)\&. -.RE -.PP -\fBSYS_UID_MAX\fR (number), \fBSYS_UID_MIN\fR (number) -.RS 4 -Range of user IDs used for the creation of system users by -\fBuseradd\fR -or -\fBnewusers\fR\&. -.sp -The default value for -\fBSYS_UID_MIN\fR -(resp\&. -\fBSYS_UID_MAX\fR) is 101 (resp\&. -\fBUID_MIN\fR\-1)\&. -.RE -.PP -\fBUID_MAX\fR (number), \fBUID_MIN\fR (number) -.RS 4 -Range of user IDs used for the creation of regular users by -\fBuseradd\fR -or -\fBnewusers\fR\&. -.sp -The default value for -\fBUID_MIN\fR -(resp\&. -\fBUID_MAX\fR) is 1000 (resp\&. 60000)\&. -.RE -.PP -\fBUMASK\fR (number) -.RS 4 -Задаёт начальное значение маски доступа для создаваемых файлов\&. Если не указано, то маска устанавливается в 022\&. -.sp -\fBuseradd\fR -and -\fBnewusers\fR -use this mask to set the mode of the home directory they create if -\fBHOME_MODE\fR -is not set\&. -.sp -It is also used by -\fBlogin\fR -to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if -\fBQUOTAS_ENAB\fR -is set) or by the specification of a limit with the -\fIK\fR -identifier in -\fBlimits\fR(5)\&. -.RE -.PP -\fBUSERGROUPS_ENAB\fR (boolean) -.RS 4 -Включает установку группы битов umask равной битам владельца (пример: 022 \-> 002, 077 \-> 007) для не суперпользователей, если uid равен gid и имя пользователя совпадает с именем первичной группы\&. -.sp -If set to -\fIyes\fR, -\fBuserdel\fR -will remove the user\*(Aqs group if it contains no more members, and -\fBuseradd\fR -will create by default a group with the name of the user\&. -.RE .SH "ФАЙЛЫ" .PP /etc/passwd @@ -779,7 +571,7 @@ specified group doesn\*(Aqt exist .PP \fI9\fR .RS 4 -username already in use +username or group name already in use .RE .PP \fI10\fR |